Closed
Description
Hello,
I would like to report for XSS vulnerability.
In file https://github.com/MoeNetwork/Tieba-Cloud-Sign/blob/master/templates/control.php line 53.
case 'setplug':
$plug = strip_tags($_GET['plug']);
$pluginfo = getPluginInfo($plug);Then, there is an echo in line 62.
echo '<a href="'.$pluginfo['plugin']['url'].'" target="_blank">';strip_tags is not secure in this case. If you can look to this code example the alert will be printed when you press on the link.
<?php
$x = "'javascript:alert()'";
$y = strip_tags($x);
echo "<a href=$x>ClickMe</a>";